Daniel AndrewinIntruderUser Enumeration in Microsoft Products: An Incident Waiting to Happen?Intruder’s latest research reveals that up to 13,000 organisations are affected by little-known user enumeration flaws in a range of…Sep 26, 2019Sep 26, 2019
Daniel AndrewinIntruderCritical RDP Flaw Leaves up to 2.3 Million Servers Exposed (CVE-2019–0708)Yesterday (May 14th 2019), Microsoft published a security advisory bulletin for a critical vulnerability in its remote login service…May 15, 2019May 15, 2019
Daniel AndrewinIntruderHow to Choose A Pentesting CompanyWe live in the age of automated hacking systems, frequent data breaches and consumer protection regulations such as GDPR and PCI DSS…Apr 10, 2019Apr 10, 2019
Daniel AndrewinIntruderHacking The Entire Internet Just Got EasierThe recent release of the new hacking tool ‘AutoSploit’ marks the dawn of a new era for unskilled attackers. It provides a fully-automated…Mar 5, 2018Mar 5, 2018
Daniel AndrewinIntruderPenetration Testing vs Continuous MonitoringWhat’s better, one-off pen-testing, or regular vulnerability scanning?Jan 22, 2018Jan 22, 2018
Daniel AndrewinIntruderJust how serious is the “ROBOT Attack”?The ROBOT attack. Sounds pretty ominous, right? Choosing catchy names for web-based cryptography (TLS) vulnerabilities has become pretty…Dec 18, 2017Dec 18, 2017
Daniel AndrewinIntruderIs Your Web Browser Secretly Mining Bitcoins?This week has seen the seemingly unstoppable surge of the cryptocurrency ‘Bitcoin’ hit over $10,000 for the first time. As private…Dec 1, 2017Dec 1, 2017
Daniel AndrewinIntruderPetya or NotPetya, Why is MS17–010 Still Not Patched?Petya or NotPetya — How long should it take to patch against a globally recognised exploit, and why are attackers still able to use…Jun 30, 2017Jun 30, 2017
Daniel AndrewinIntruderTeam Xball — DDoS Extortion Hoax“We are the Team Xball and we have chosen your website/network as target for our next DDoS attack.”Jun 15, 2017Jun 15, 2017
